{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5017d5cb-6b0c-5adf-aa7d-bd42d1738bda", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2", "type": "library", "group": "org.springframework", "name": "spring-aop", "version": "4.0.0.RELEASE-tuxcare.2", "purl": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0461b43b-7325-54a0-80f2-1358ca625299", "id": "CVE-2014-0054", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0054 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26655bc0-4745-55e2-82ec-65e805ec575f", "id": "CVE-2014-0225", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-0225 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e8a577e-ed35-5329-be04-be227eb74dc8", "id": "CVE-2014-1904", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-1904 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2244fa73-ecc9-5e6d-bf57-63416973f4f9", "id": "CVE-2014-3578", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3578 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bd61b42-ac81-5c73-ad4d-3b10d05f37ae", "id": "CVE-2014-3625", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2014-3625 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed66efdc-5874-57e0-9893-3db199ebe71a", "id": "CVE-2015-3192", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3192 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24333ebc-d597-5b9c-be1b-aade193ac2e4", "id": "CVE-2015-5211", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2015-5211 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf9c3993-bb1e-5d92-9ee5-b55b7a130e96", "id": "CVE-2016-1000027", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-1000027 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76a19d37-611d-5f3a-954d-add90ede40d4", "id": "CVE-2016-5007", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-5007 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac3bc02c-636a-5e69-8bf6-ea6e440ee37d", "id": "CVE-2016-9878", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-9878 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a332748-51d7-5c85-95d6-45cde514e5c9", "id": "CVE-2018-11039", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-11039 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39117951-396c-5b10-ab11-c0428948d908", "id": "CVE-2018-11040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11040 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5bd10aed-096c-571e-82e9-148fc16b34a5", "id": "CVE-2018-1257", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2018-1257 is a false positive for org.springframework:spring-aop 4.0.0.RELEASE-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2f17032-bf3d-5f64-aec6-460659bfc21f", "id": "CVE-2018-1270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1270 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5437a59d-3b97-5bff-8922-1a79a0180802", "id": "CVE-2018-1271", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1271 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a0eac62-7c38-51a5-9808-42fa29ce9529", "id": "CVE-2018-1272", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2018-1272 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5f799f0-b8e7-51d5-a9c3-512a0f02a0d7", "id": "CVE-2018-1275", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1275 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:22654609-250a-5223-9f66-dfcfe3484ea9", "id": "CVE-2020-5421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5421 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e85e8fbb-0b6a-5bd3-b30b-96fc7d48a10f", "id": "CVE-2021-22060", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22060 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2ea9f80-44a7-593a-be4e-d6131184bedf", "id": "CVE-2021-22096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22096 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:170ce7e0-853f-554a-ac22-9cb460c8601d", "id": "CVE-2021-22118", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-22118 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ceaf2aee-6702-51ef-800a-1972a1d93ea2", "id": "CVE-2022-22950", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22950 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5e69986-8fb6-5aee-b775-6cccbde28cd9", "id": "CVE-2022-22965", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22965 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:089eda9f-f84f-541e-bc18-343028f65d22", "id": "CVE-2022-22968", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22968 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8808d28f-bd96-5217-9200-62747cc41ddc", "id": "CVE-2022-22970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22970 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:297799d7-0f3b-591d-9dc8-2ac5ee3efdac", "id": "CVE-2022-22971", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-22971 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b4394b8-9d2f-592b-a0ff-c804b7d8430c", "id": "CVE-2023-20861", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20861 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b608781-5ab3-51e6-97e7-f44c757f96d1", "id": "CVE-2023-20863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-20863 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92ce989b-fdab-5e08-ba33-8036b61c0f03", "id": "CVE-2024-22243", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22243 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44722f4d-9fae-585b-a83f-979e288398bd", "id": "CVE-2024-22259", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22259 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc63babc-fd8b-533f-a043-f81aacfc2a95", "id": "CVE-2024-22262", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-22262 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df4f4aa1-8f47-52dc-9a19-67c023116115", "id": "CVE-2024-38808", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38808 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:18e2ecd3-b5c7-5f0c-9552-07372d92d97a", "id": "CVE-2024-38809", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38809 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:587f3886-0e9a-5817-8d2c-c720492836cb", "id": "CVE-2024-38819", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38819 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44495aef-91a0-5b4b-81fe-66c7331586a0", "id": "CVE-2024-38820", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38820 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d490d00c-0b61-5d89-8bf1-e4944216801a", "id": "CVE-2024-38828", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-38828 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3acea5ec-5c72-5f8d-8a0a-17a33a50870f", "id": "CVE-2025-22233", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-22233 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aae4a82f-6903-54d9-a2ee-c86831d46cd3", "id": "CVE-2025-41242", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41242 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25b84c20-e118-5da9-9fed-490907913829", "id": "CVE-2025-41249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-41249 affects version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84ce521e-2a9f-5da3-abf1-5bf38a200ea4", "id": "CVE-2025-41254", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-41254 is fixed in version 4.0.0.RELEASE-tuxcare.2 of org.springframework:spring-aop." }, "affects": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.springframework/spring-aop@4.0.0.RELEASE-tuxcare.2" } ] }